LiveHire users cookies on this website. Cookies are small pieces of data stored by your browser on your computer or device to help run this site, improve security, and improve your experience.

Click Accept to continue, or for more information please see our Cookies Policy.

‹ Back to all jobs

Cyber Security SIEM Analyst/Engineer

  • LocationNorth Sydney, NSW 2060
  • Work TypeFull time
  • Positions1 Position
  • Applications Close AtClosed 9 days ago
    Never published
  • Job no: QMTK8
  • Category: Technology, IT - Cyber Security
  • Hybrid working arrangement, mix of working from home and the office
  • Head office is in North Sydney, but this position could be based in any Australian State
  • Awesome company culture and benefits

We’ve only just begun, but what a beginning. In a once in a generation moment, we’ve brought together powerful brands to create one united force. TPG Telecom has a powerhouse of brands which include Vodafone, TPG, iiNet, Internode, Lebara, AAPT and felix. The latest technology and brave thinking let us connect our people and communities. You could play a role in that. A big one. We invite you to bring your boldness and stand out. You are empowered. Opportunities are plenty for those ready to accept the challenge.

This opportunity

The Cyber Security SIEM Analyst is responsible for providing support and assistance for all Security Information and Event Management (SIEM) related activities, including onboarding of new technologies and development of scenarios to assist the Cyber Defence & Response Centre (CDRC) in the monitoring and alerting of current and future security threats for the full TPG Telecom environment.

The successful candidate will be working on industry-leading Cyber Security tools, techniques and best practice to navigate the continuously evolving threat landscape.

Responsibilities

  • Identification and mitigation of cyber security threats
  • Support the development and testing of security event correlation content and threat-based use cases using SIEM technologies
  • Support and develop SIEM platform continuous improvement efforts and navigate the continuously evolving threat landscape with a focus on bringing that information into the platform
  • Maintain strong relationships with team members, organisational stakeholders, and partners to build a thorough understanding of the technical environment by identifying risks, articulating threats and assisting incident response efforts
  • Assist with Technology Security sponsored or led security assessments, audits and reviews
  • Promote security awareness and policy advocacy by supporting various internal and external stakeholders as required
  • Develop, test and maintain SIEM integrations, event aggregation and correlation content to allow analysts to actively monitor security tools for potential threats and prioritise threat response efforts
  • Maintain up-to-date and thorough understanding of various critical log event sources in various formats including network devices, security platforms, operating systems, applications, and log management platforms like Splunk and ArcSight SIEM
  • Help in the implementation and development of SIEM content to support CDRC Use Cases and Playbooks
  • Assist with the implementation, development, automation and maintenance of Technology Security dashboards and reports for peer and executive audience
  • Author and maintain documentation of SIEM integrations, correlation content development and implementation
  • Assist forensic investigation efforts in response to security incidents by providing evidence from the SIEM
  • Support efforts to author incident reports for peer and senior audiences
  • Support the continuous improvement of data provided to third parties that provide additional services to the CDRC.

Knowledge and experience

  • Tertiary qualifications in IT or Engineering, or related discipline
  • In-depth knowledge of information security concepts and technologies
  • 2-3 years of in-depth technical SIEM integration, administration and security event correlation use case development experience 
  • ArcSight experience would be desirable but not essential
  • Information Security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration
  • Extensive understanding of cyber security hygiene benchmarks and industry frameworks applicable to VHA’s complex hybrid (on-premise, private and public cloud) environment
  • In depth technical skills, includes TCP/IP knowledge, networking and security product experience
  • Good understanding of Telecommunications would be desirable but not essential
  • A passion for learning and a desire to succeed
  • Excellent oral and written communication skills with the ability to communicate technical information and ideas clearly and concisely in a business context
  • Strong desire to build and tinker with tools to solve problems
  • Good interpersonal and consultative skills.

Benefits and perks

  • Flexible hybrid way of working (from home and office)
  • ‘Stay Connected Mobile’ – Access to a free mobile plan
  • ‘Stay Connected NBN’ – Access to a free NBN 100 plan
  • ‘Your Leave’ - an additional 4 days of leave to be used whenever you like - every year
  • Access to TPG Learning Hub platform and internal development opportunities
  • Access to Corporate Partner Discounts.

Our TPG Telecom Spirit

We believe in the power of meaningful relationships to support vibrant, connected communities where everyone belongs. You will join a supportive company that is diverse and inclusive, and celebrates what makes our employees different, as well what brings us together. We want you to bring your true self to work, and to feel like your contribution matters. We encourage ambition in everything we do, from telco solutions to customer experience, to community impact. You will have real opportunities to take charge and take control.

If you think the power of people and collaboration can make a meaningful difference in the world, then APPLY NOW to help us build a better future.

Bolder and better together!

At TPG Telecom we take all reasonably practicable steps to protect the health and safety of our people. The successful candidate is required to be fully vaccinated against COVID-19, due to the increased risk of infection and nature of the work. Please let our team know if there is anything you need to discuss about your individual circumstances.

#LI-JG1 

#LI-Hybrid

  • Closed 9 days ago - 20 May 2022